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Providing real-time communication services to multimedia applications and subscription- 
based Internet access often requires that sufficient network resources be reserved for 
real-time traffic. However, the reserved network resource is susceptible to resource theft 
and abuse. Without a resource access control mechanism that can efficiently differentiate 
legitimate real-time traffic from attacking packets, the traffic conditioning and policing 
enforced at Internet Service Provider (ISP) edge route ... 
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In most forward-secure signature constructions, a program that updates a user's private 
signing key must have full access to the private key. Unfortunately, these schemes are 
incompatible with several security architectures including Gnu Privacy Guard (GPG) and 
S/MIME, where the private key is encrypted under a user password as a "second factor" of 
security, in case the private key storage is corrupted, but the password is not.We 
introduce the concept of forward-secure signatures with untrusted ... 
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Group communication can benefit from IP multicast to achieve scalable exchange of 
messages. However, there is a challenge of effectively controlling access to the 
transmitted data. IP multicast by itself does not provide any mechanisms for preventing 
nongroup members to have access to the group communication. Although encryption can 
be used to protect messages exchanged among group members, distributing the 
cryptographic keys becomes an issue. Researchers have proposed several different 
approach ... 
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We study the vulnerability of two implementations of the Data Encryption Standard (DES) 
cryptosystem under a timing attack. A timing attack is a method, recently proposed by 
Paul Kocher, that is designed to break cryptographic systems. It exploits the engineering 
aspects involved in the implementation of cryptosystems and might succeed even against 
cryptosys-tems that remain impervious to sophisticated cryptanalytic techniques. A timing 
attack is, essentially, a way of obtaining some users ... 
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Insider attack is one of the most serious cybersecurity threats to corporate America. 
Among all insider threats, information theft is considered the most damaging in terms of 
potential financial loss. Moreover, it is also especially difficult to detect and prevent, 
because in many cases the attacker has the proper authority to access the stolen 
information. According to the 2003 CSI/FBI Computer Crime and Security Survey, theft of 
proprietary information was the single largest category of los ... 
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Security is critical to a wide range of wireless data applications and services. While several 
security mechanisms and protocols have been developed in the context of the wired 
Internet, many new challenges arise due to the unique characteristics of battery powered 
embedded systems. In this work, we focus on an important constraint of such devices -- 
battery life — and examine how it is impacted by the use of security protocols. We present 
a comprehensive analysis of the energy requirements of a ... 
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This paper develops a virtual connection model, complete with intruder, for interactive 
terminal-host communication and presents a set of protection goals that characterize the 
security that can be provided for a physically unsecured connection. Fundamental 
requirements for protocols that achieve these goals and the role of encryption in the 
design of such protocols are examined. Functional and security constraints on positioning 
of protection protocols in a communication system and the imp ... 
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Smart cards are vulnerable to both invasive and non-invasive attacks. Specifically, non- 
invasive attacks using power and timing measurements to extract the cryptographic key 
has drawn a lot of negative publicity for smart card usage. The power measurement 
techniques rely on the data-dependent energy behavior of the underlying system. 
Further, power analysis can be used to identify the specific portions of the program being 
executed to induce timing glitches that may in turn help to bypass key ch ... 
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A network covert channel is a mechanism that can be used to leak information across a 
network in violation of a security policy and in a manner that can be difficult to detect. In 
this paper, we describe our implementation of a covert network timing channel, discuss 
the subtle issues that arose in its design, and present performance data for the channel. 
We then use our implementation as the basis for our experiments in its detection. We 
show that the regularity of a timing channel can be use ... 
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We investigate the design space of sensor network broadcast authentication. We show 
that prior approaches can be organized based on a taxonomy of seven fundamental 
proprieties, such that each approach can satisfy at most six of the seven proprieties. An 
empirical study of the design space reveals possibilities of new approaches, which we 
present in the following two new authentication protocols: RPT and LEA. Based on this 
taxonomy, we offer guidance in selecting the most appropriate protocol bas ... 

Keywords: broadcast authentication, sensor network, taxonomy 
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Suppose a number of hospitals in a geographic area want to learn how their own heart- 
surgery unit is doing compared with the others in terms of mortality rates, subsequent 
complications, or any other quality metric. Similarly, a number of small businesses might 
want to use their recent point-of-sales data to cooperatively forecast future demand and 
thus make more informed decisions about inventory, capacity, employment, etc. These 
are simple examples of cooperative benchmarking and (respectiv ... 

Keywords: benchmarking, e-commerce, forecasting, privacy, secure multi-party 
computation, secure protocol 
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Publisher: Kluwer Academic Publishers 
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Wireless sensor networks will be widely deployed in the near future. While much research 
has focused on making these networks feasible and useful, security has received little 
attention. We present a suite of security protocols optimized for sensor networks: SPINS. 
SPINS has two secure building blocks: SNEP and pTESLA. SNEP includes: data 
confidentiality, two-party data authentication, and evidence of data freshness. pTESLA 
provides authenticated broadcast for severely resource-constrained ... 

Keywords: MANET, authentication of wireless communication, cryptography, mobile ad 
hoc networks, secrecy and confidentiality, secure communication protocols, sensor 
networks 
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From the Preface (See Front Matter for full Preface) 

An important adjunct to precision is a sound theoretical foundation. The relational model 
is solidly based on two parts of mathematics: firstorder predicate logic and the theory of 
relations. This book, however, does not dwell on the theoretical" foundations, but rather on 
all the features of the relational model that I now perceive as important for database 
users, and therefore for DBMS vendors. My perceptions result from 20 y ... 
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As sensor networks edge closer towards wide-spread deployment, security issues become 
a central concern. So far, much research has focused on making sensor networks feasible 
and useful, and has not concentrated on security. 

We present a suite of security building blocks optimized for resource-constrained 
environments and wireless communication. SPINS has two secure building blocks: SNEP 
and &mgr;TESLA SNEP provides the following important baseline security primitives: Data 
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We present a polynomial-time algorithm that, given as a input the description of a game 
with incomplete information and any number of players, produces a protocol for playing 
the game that leaks no partial information, provided the majority of the players is honest. 
Our algorithm automatically solves all the multi-party protocol problems addressed in 
complexity-based cryptography during the last 10 years. It actually is a completeness 
theorem for ... 

19 Wixeless... Balanci ng audi t abilitv and privacy, in vehicular networks H 

Jong Youl Choi, Markus Jakobsson, Susanne Wetzel 

October 2005 Proceedings of the 1st ACM international workshop on Quality of 
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Publisher: ACM Press 

Full text available: ^..pdf(m^_KB). Additional Information: full citation, abstrac t, r efe re nces , i ndex te rms 

We investigate how to obtain a balance between privacy and audit requirements in 
vehicular networks. Challenging the current trend of relying on asymmetric primitives 
within VANETs, our investigation is a feasibility study of the use of symmetric primitives, 
resulting in some efficiency improvements of potential value. More specifically, we 
develop a realistic trust model, and an architecture that supports our solution. In order to 
ascertain that most users will not find it meaningful to disconn ... 

Keywords: audit, incentive, light-weight, privacy, symmetric 
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Use of encryption to achieve authenticated communication in computer networks is 
discussed. Example protocols are presented for the establishment of authenticated 
connections, for the management of authenticated mail, and for signature verification and 
document integrity guarantee. Both conventional and public-key encryption algorithms 
are considered as the basis for protocols. 

Keywords: authentication, data encryption standard, encryption, networks, protocols, 
public-key cryptosystems, security 
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